Archive for February, 2010
2010-02-24 detected threat files and virus
yfq.exe; fwrdrpog.sys; uxwoapow.sys; agpyapod.sys; jbridgep.sys; awrcipod.sys; b9ba940fd4.sys; 43708123.exe; uxtdypoc.sys; gusbstoi.sys; kgtdapob.sys; fxtdapod.sys; afloikob.sys; awayipob.sys; awdoqpod.sys; nl6.exe; fcq.exe; jcrt.exe; abn.exe; 81918734.exe; 26319728.exe; 77626230.exe; zjfthwriuifxcrfx.exe; zjfthwriuifxcrfx.exe; uzqzisiubkc.exe; pbzpfwtmaqpjqhxrnx.exe; pbzpfwtmaqpjqhxrnx.exe; pbzpfwtmaqpjqhxrnx.exe; grodsiewjywpvlato.exe; grodsiewjywpvlato.exe; crsleyyulegdnhaxwjrla.exe; crsleyyulegdnhaxwjrla.exe; ncwrkvumwrlrregohy.exe; eslfxhfwfzsxwijqi.exe; eslfxhfwfzsxwijqi.exe; fgfsgf.exe; kfryyfoc.sys; ugriypow.sys; afpyqfow.sys; pwtyypow.sys; ufdyqpoc.sys; kfxyrkog.sys; w1r1b.exe; pvolsnap.sys; bfips.sys; pxriipoc.sys; uwlorkod.sys; kwayypog.sys; agxiykog.sys;
February 25th, 2010 | Posted in Kaspersky, McAfee | No Comments
rjvjlsvw.exe sample submitted on 2010-02-23 and identified as a threat.
Alias:
Threat File:rjvjlsvw.exe
Submit time:2010-02-23
Excute time:5 min 39 sec
Level of Spread:1
Level of Threat:1
type:Trojan.Win32.Agent.cqur 14:29
Filesize:57K Bytes
Files type
rjvjlsvw.exe is Windows exe file.
MD5:72FG1OBeBc6ChJgAN8vxMFLvs62s8bxq
February 23rd, 2010 | Posted in F-Prot6, F-Secure | No Comments
ddaqaez4.exe sample submitted on 2010-02-23 and identified as a threat.
Alias:
Threat File:ddaqaez4.exe
Submit time:2010-02-23
Excute time:7 min 43 sec
Level of Spread:3
Level of Threat:6
type:AntivirusXPPro
Filesize:71K Bytes
Files type
ddaqaez4.exe is Windows exe file.
MD5:ocbNNI5l6OEIrDMxPJB775pLt81jR17G
February 23rd, 2010 | Posted in NOD32, Panda | No Comments
qbl.exe; tml.exe; dc3yh.exe; herss.exe; win.exe; riukhcpkfqnzxnfyhl.exe; riukhcpkfqnzxnfyhl.exe; piwonkzwtgfttlfalrlv.exe; cuhywsgcykivuleying.exe; user.exe; system.exe; hjr.exe; uqnxzi.exe; evh.exe; herss.exe; 382.exe; jql.exe; svchost.com; 15515522.exe; zb1.exe; svchost.exe; dc3yh.exe; svchost.exe; hlx.exe; herss.exe; herss.exe; e.exe; svchost.com; rjvjlsvw.exe; rjvjlsvw.exe; rsbyii.exe; 589.exe; svchost.com; setuper.exe; rjvjlsvw.exe; 886.exe; 441.exe; wingymi.exe; wingpssc.exe; rjvjlsvw.exe; hhh.exe; 836.exe; jhh.exe; qbl.exe; tml.exe; winchhy.exe; litufi.exe; winjrmi.exe; winnnac.exe;
February 23rd, 2010 | Posted in BitDefender | No Comments
Threat Name: Trojan.fraudpack.win32/avln
Spread Method:
Registry Value Creation
Instant Message(MSN,Gtalk,QQ etc.)
Threat type:Trojan.fraudpack
Trojan.fraudpack.win32/avln first detected:2010-02-21
Virus file known is PE EXE file written in Basic
File Size:455K Bytes.
Behavior:Creat files in Documents and Settings\[Users]\Local Settings\Temp\
Level of Spread:4
Level of Threat:5
Reported Path:D:\Windows\
MD5:f41bcRkQaxYGx1g1vD466ibHr5IWp4wM
SHA1..:4TE33asy32AO2FoE1KVA0q3p0Wqf8V1UOcMKM202
February 21st, 2010 | Posted in Kaspersky | No Comments
Threat Name: HEUR:Trojan-Downloader.Script.Generic
Spread Method:
Malware Installation
Threat type:HEUR:Trojan-Downloader.Script
HEUR:Trojan-Downloader.Script.Generic first detected:2010-02-21
Virus file known is PE exe file written in C language
File Size:657K Bytes.
Behavior:Registered as a Dynamic Link Library File
Level of Spread:1
Level of Threat:2
Reported Path:Unkonow path
MD5:D5O008eYh1sw2q041×5JjeE0HlTWgRIt
SHA1..:LXw3KF1hpL78N63U48Xr62mIP6bf5aq7tG8SRNN5
February 21st, 2010 | Posted in Kaspersky | 1 Comment
Threat Name: trojan-Game Thief.Win32.magania.cunp
Spread Method:
Instant Message(MSN,Gtalk,QQ etc.)
Threat type:trojan-Game Thief.Win32
trojan-Game Thief.Win32.magania.cunp first detected:2010-02-21
Virus file known is dll file written in C++
File Size:519K Bytes.
Behavior:places the file shown below in the root of the disk::\autorun.inf
Level of Spread:3
Level of Threat:4
Reported Path:E:\Winnt\
MD5:C5N007cXG0ru1p841v5IidD82jRVfQHs
SHA1..:KWv3IEegn36wM62T38Wq51LHOraE4yp7sF8RQL45
February 21st, 2010 | Posted in Kaspersky | No Comments
pwldyaog.sys; awryaaod.sys; uwrciuog.sys; pxldypog.sys; kwloifow.sys; uwliauog.sys; rjvjlsvw.exe; evx.exe; hjh.exe; herss.exe; zfh.exe; ofcxmhyutmtcxmdzhqhe.exe; kxh.exe; hvphtlzsoeiogsgze.exe; dvtpfbtqqkscyogdmwomi.exe; angxizmezorwnyld.exe; rjvjlsvw.exe; iqgfypvt.exe; psd.exe; rjvjlsvw.exe; rjvjlsvw.exe; rjvjlsvw.exe; hkd.exe; herss.exe; herss.exe; kkd.exe; xaiexa.exe; viuzao.exe; glb1a2b.exe; w8e047.exe; rjvjlsvw.exe; prdmed.exe; winpmdwj.exe; windjll.exe; fjuxal.exe; evx.exe; degukpy.exe; 711.exe; 589.exe; 153.exe; winxqlhp.exe; winacbt.exe; hjh.exe; winsgcl.exe; cxr.exe; 550.exe; zfh.exe; kxh.exe; soundnormalizer.tmp;
February 21st, 2010 | Posted in Kaspersky, VBA32 | No Comments
Threat Name: worm.win32.autorun.gxh
Spread Method:
E-Mail
Threat type:worm.win32
worm.win32.autorun.gxh first detected:2010-02-19
Virus file known is dll file written in C++
File Size:499K Bytes.
Behavior:False Instant Message
Level of Spread:5
Level of Threat:6
Reported Path:C:\Winnt\System32\
MD5:obaNNI5k6OEIqCLxP3Bu75pLs71iR16F
SHA1..:wj3VuqQ6BwfJ8dt2XKj1DQ8t0EM5aL0h16JedyyB
February 19th, 2010 | Posted in F-Prot6, Kaspersky | No Comments
df2.exe; herss.exe; vwtmidwppfwbozgyzwplg.exe; vwtmidwppfwbozgyzwplg.exe; tsneyrizxladoxcsrmd.exe; blx.exe; lcx.exe; internurbjugs.exe; herss.exe; rnd.exe; hwr.exe; b.exe; tkx.exe; svchost.com; dc3yh.exe; 63352625.exe; 54407020.exe; 200.exe; jnnpkn.exe; herss.exe; 39.tmp; lxh8g.exe; nvvfnnv.exe; inh.exe; vwwixjz.exe; msinits.exe; fwqlsftav.exe; ohj.exe; ohh.exe; nriom.exe; winwkpirv.exe; winqowhqa.exe; kodnyp.exe; df2.exe; winlxfm.exe; winyxub.exe; winremgmj.exe; w2af7d1.exe; w1342ea7.exe; krqqn.exe; vgnqw.exe; blx.exe; kanf.exe; lcx.exe; wincceo.exe; touqfo.exe; w939a2.exe; pgyg.exe; winflemxk.exe;
February 19th, 2010 | Posted in Kaspersky, Pctools | No Comments
